Security risk assessment as a mental health tool
Let’s talk about protecting your well-being by prioritizing what security risks you want to address.
Media organizations are locking down
The New York Times reports media organizations are locking down their communications amid threats to the press.
Telegram’s compliance with data requests skyrockets
Following CEO Pavel Durov’s arrest, the messaging app is giving more user IP addresses and phone numbers to U.S. authorities
Leaks and the media in 2025
Trump attorneys, incoming officials lay out intentions to use the legal system to bully media and investigate leaks
Clawing back your data on X
Purging your social media posts is getting much simpler
Lock down your Bluesky account
Among journalists, Bluesky is taking flight. Critical account security protections are still under development
New leaks on police phone unlocking tech
Recent insight into the capabilities and limitations of GrayKey, a secretive phone forensics tool, highlight the importance of updates
WhatsApp lawsuit highlights spyware abuses (again)
In lawsuit against NSO Group, documents reveal the spyware vendor disconnected 10 abusive government customers
Use Signal’s new call links
The encrypted messaging app just rolled out a new feature to let users join a call with just a link — groups no longer required
Election safety support for journalists
Alongside a coalition of press freedom organizations, we’ve teamed up with the Knight Election Hub to support journalists.
Stop ad-based location tracking
Tracking IDs baked into your mobile device reveal visits to abortion clinics and more.
Support the Internet Archive
Help out a critical resource for journalists as it experiences a series of digital attacks.
Chrome phases out popular ad blocker — what now?
It’s the Digital Security Training team at Freedom of the Press Foundation (FPF), with security news that keeps you, your sources, and your devices safe. If someone has shared this newsletter with you, please subscribe here.In the newsIn its push to rework permissions within Google Chrome desktop …
See, this is why we need encryption
U.S. intelligence agencies suggest China is involved in a breach of multiple major U.S. telecommunications providers.
Indicted NYC mayor forgets phone passcode
Eric Adams allegedly claimed that he had changed the passcode and told the FBI he did not remember it.
Discord boosts private call encryption
Discord announced its rollout of end-to-end encryption for voice and video calls in one-to-one and group direct messages, voice channels, and Go Live streams.
Apple seeks dismissal of NSO Group lawsuit
Apple has filed a motion to withdraw a lawsuit against NSO Group, an Israeli spyware company.
Telegram rethinks messaging on content moderation
Following the arrest of Telegram founder and CEO Pavel Durov, the messaging app modified its FAQ page to clarify some new rules.
City sues security researcher after revelations about ransomware attack
Columbus Mayor Andrew Ginther announced that the data was either “encrypted or corrupted.”
Telegram misrepresented amid founder’s arrest
The arrest of Telegram founder Pavel Durov has helped foster the mistaken notion that the app is a standard end-to-end encrypted messenger.
Data broker breach leaks Social Security numbers (again)
National Public Data confirmed nearly 3 billion records were affected.
Russia blocks access to Signal
The latest move means that the app has been removed from Google Play and Apple App Store in Russia.
Cloudflare hides abusive websites
The Spamhaus Project has released a blog criticizing Cloudflare — a content delivery network and cloud cybersecurity provider — for providing security services to abusive domains. These websites could contain spam, phishing links, malware, and even botnets.
Android spyware flies under the radar
The cybersecurity firm Kaspersky disclosed that at least five Google Play applications contained Mandrake, a sophisticated cyberespionage tool.
Google backtracks on ad privacy plan
Google has a habit of hitting the brakes on products and features — so much so that it’s become something of a meme to be “killed by Google.” This time it decided to backtrack on its long-standing plan to replace traditional tracking in its Chrome browser.
